kernel/arch/arm64/include/asm/kvm_hyp.h, branch linux-6.2.yHosts the 0x221E linux distro kernel.https://universe.0xinfinity.dev/distro/kernel/atom?h=linux-6.2.y2022-11-11T17:19:35ZKVM: arm64: Maintain a copy of 'kvm_arm_vmid_bits' at EL22022-11-11T17:19:35ZWill Deaconwill@kernel.org2022-11-10T19:02:55Zurn:sha1:73f38ef2ae531b180685173e0923225551434fcb
Sharing 'kvm_arm_vmid_bits' between EL1 and EL2 allows the host to
modify the variable arbitrarily, potentially leading to all sorts of
shenanians as this is used to configure the VTTBR register for the
guest stage-2.
In preparation for unmapping host sections entirely from EL2, maintain
a copy of 'kvm_arm_vmid_bits' in the pKVM hypervisor and initialise it
from the host value while it is still trusted.
Tested-by: Vincent Donnefort <vdonnefort@google.com>
Signed-off-by: Will Deacon <will@kernel.org>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20221110190259.26861-23-will@kernel.org
KVM: arm64: Provide I-cache invalidation by virtual address at EL22022-11-11T17:16:25ZWill Deaconwill@kernel.org2022-11-10T19:02:49Zurn:sha1:13e248aab73d2f1c27b458ef09d38b44f3e5bf2e
In preparation for handling cache maintenance of guest pages from within
the pKVM hypervisor at EL2, introduce an EL2 copy of icache_inval_pou()
which will later be plumbed into the stage-2 page-table cache
maintenance callbacks, ensuring that the initial contents of pages
mapped as executable into the guest stage-2 page-table is visible to the
instruction fetcher.
Tested-by: Vincent Donnefort <vdonnefort@google.com>
Signed-off-by: Will Deacon <will@kernel.org>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20221110190259.26861-17-will@kernel.org
arm64: Add support of PAuth QARMA3 architected algorithm2022-02-25T13:38:52ZVladimir Murzinvladimir.murzin@arm.com2022-02-24T12:49:52Zurn:sha1:def8c222f054d18aac1fd065a50b9db5feaefa9d
QARMA3 is relaxed version of the QARMA5 algorithm which expected to
reduce the latency of calculation while still delivering a suitable
level of security.
Support for QARMA3 can be discovered via ID_AA64ISAR2_EL1
APA3, bits [15:12] Indicates whether the QARMA3 algorithm is
implemented in the PE for address
authentication in AArch64 state.
GPA3, bits [11:8] Indicates whether the QARMA3 algorithm is
implemented in the PE for generic code
authentication in AArch64 state.
Signed-off-by: Vladimir Murzin <vladimir.murzin@arm.com>
Acked-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20220224124952.119612-4-vladimir.murzin@arm.com
Signed-off-by: Will Deacon <will@kernel.org>
KVM: arm64: Remove unused __sve_save_state2021-11-22T16:01:39ZMarc Zyngiermaz@kernel.org2021-11-22T15:59:23Zurn:sha1:e66425fc9ba33e9716d6e7c6bc78bb62f981d4df
Now that we don't have any users left for __sve_save_state, remove
it altogether. Should we ever need to save the SVE state from the
hypervisor again, we can always re-introduce it.
Suggested-by: Zenghui Yu <yuzenghui@huawei.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
KVM: arm64: Add handlers for protected VM System Registers2021-10-11T13:57:29ZFuad Tabbatabba@google.com2021-10-10T14:56:32Zurn:sha1:6c30bfb18d0b7d09593f204c936493cfcd153956
Add system register handlers for protected VMs. These cover Sys64
registers (including feature id registers), and debug.
No functional change intended as these are not hooked in yet to
the guest exit handlers introduced earlier. So when trapping is
triggered, the exit handlers let the host handle it, as before.
Reviewed-by: Andrew Jones <drjones@redhat.com>
Signed-off-by: Fuad Tabba <tabba@google.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20211010145636.1950948-8-tabba@google.com
KVM: arm64: Restore mdcr_el2 from vcpu2021-08-20T10:12:17ZFuad Tabbatabba@google.com2021-08-17T08:11:25Zurn:sha1:1460b4b25fde52cbee746c11a4b1d3185f2e2847
On deactivating traps, restore the value of mdcr_el2 from the
newly created and preserved host value vcpu context, rather than
directly reading the hardware register.
Up until and including this patch the two values are the same,
i.e., the hardware register and the vcpu one. A future patch will
be changing the value of mdcr_el2 on activating traps, and this
ensures that its value will be restored.
No functional change intended.
Signed-off-by: Fuad Tabba <tabba@google.com>
Acked-by: Will Deacon <will@kernel.org>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20210817081134.2918285-7-tabba@google.com
Merge branch 'kvm-arm64/nvhe-panic-info' into kvmarm-master/next2021-04-13T14:38:03ZMarc Zyngiermaz@kernel.org2021-04-13T14:38:03Zurn:sha1:5c92a7643b14a5bc93bac6e2af5f9010e284b584
Signed-off-by: Marc Zyngier <maz@kernel.org>
KVM: arm64: Use BUG and BUG_ON in nVHE hyp2021-04-01T08:54:37ZAndrew Scullascull@google.com2021-03-18T14:33:10Zurn:sha1:f79e616f27ab6cd74deb0995a8eead3d1c9d65af
hyp_panic() reports the address of the panic by using ELR_EL2, but this
isn't a useful address when hyp_panic() is called directly. Replace such
direct calls with BUG() and BUG_ON() which use BRK to trigger an
exception that then goes to hyp_panic() with the correct address. Also
remove the hyp_panic() declaration from the header file to avoid
accidental misuse.
Signed-off-by: Andrew Scull <ascull@google.com>
Acked-by: Will Deacon <will@kernel.org>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20210318143311.839894-5-ascull@google.com
KVM: arm64: Drop the CPU_FTR_REG_HYP_COPY infrastructure2021-03-25T11:01:03ZMarc Zyngiermaz@kernel.org2021-03-22T13:32:34Zurn:sha1:7c4199375ae347449fbde43cc8bf174ae6383d8e
Now that the read_ctr macro has been specialised for nVHE,
the whole CPU_FTR_REG_HYP_COPY infrastrcture looks completely
overengineered.
Simplify it by populating the two u64 quantities (MMFR0 and 1)
that the hypervisor need.
Reviewed-by: Quentin Perret <qperret@google.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
KVM: arm64: Prepare the creation of s1 mappings at EL22021-03-19T12:01:21ZQuentin Perretqperret@google.com2021-03-19T10:01:25Zurn:sha1:f320bc742bc23c1d43567712fe2814bf04b19ebc
When memory protection is enabled, the EL2 code needs the ability to
create and manage its own page-table. To do so, introduce a new set of
hypercalls to bootstrap a memory management system at EL2.
This leads to the following boot flow in nVHE Protected mode:
1. the host allocates memory for the hypervisor very early on, using
the memblock API;
2. the host creates a set of stage 1 page-table for EL2, installs the
EL2 vectors, and issues the __pkvm_init hypercall;
3. during __pkvm_init, the hypervisor re-creates its stage 1 page-table
and stores it in the memory pool provided by the host;
4. the hypervisor then extends its stage 1 mappings to include a
vmemmap in the EL2 VA space, hence allowing to use the buddy
allocator introduced in a previous patch;
5. the hypervisor jumps back in the idmap page, switches from the
host-provided page-table to the new one, and wraps up its
initialization by enabling the new allocator, before returning to
the host.
6. the host can free the now unused page-table created for EL2, and
will now need to issue hypercalls to make changes to the EL2 stage 1
mappings instead of modifying them directly.
Note that for the sake of simplifying the review, this patch focuses on
the hypervisor side of things. In other words, this only implements the
new hypercalls, but does not make use of them from the host yet. The
host-side changes will follow in a subsequent patch.
Credits to Will for __pkvm_init_switch_pgd.
Acked-by: Will Deacon <will@kernel.org>
Co-authored-by: Will Deacon <will@kernel.org>
Signed-off-by: Will Deacon <will@kernel.org>
Signed-off-by: Quentin Perret <qperret@google.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20210319100146.1149909-18-qperret@google.com